[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: openldap proxy issue

To: jerrrry@voila.fr
Subject: Re: openldap proxy issue
From: Pierangelo Masarati <ando@sys-net.it>
Date: Sat, 06 Jan 2007 00:33:05 +0100
Cc: openldap-software@openldap.org
In-reply-to: <15374687.1168024361848.JavaMail.www@wwinf4204>
References: <15374687.1168024361848.JavaMail.www@wwinf4204>
User-agent: Mail/News 1.5.0.7 (X11/20060916)

jerrrry@voila.fr wrote:

hi,
I'am configuring slapd(8) 2.3.27 for use as a proxy to another LDAP server.

the purpose is to do an ldap authentication to a ldap backend, that need that an administator account bind to do a search, with applications that can only do an anonymous bind.

can openldap rewrite the anonynous connection to bind with the administrator acount instead ?

Try something like:

database        ldap
suffix          "dc=example,dc=com"
uri             "ldap://:9011";
idassert-bind   bindmethod="simple"
               binddn="cn=Manager,dc=example,dc=com"
               credentials="secret"
               mode="self"
idassert-authzfrom      "dn.regex=.+"
idassert-authzfrom      "dn:"

p.

Ing. Pierangelo Masarati
OpenLDAP Core Team

SysNet s.n.c.
Via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it
------------------------------------------
Office:   +39.02.23998309
Mobile:   +39.333.4963172
Email:    pierangelo.masarati@sys-net.it
------------------------------------------

References:
- openldap proxy issue
  - From: "jerrrry@voila.fr" <jerrrry@voila.fr>

Prev by Date: Re: No schema in my db
Next by Date: Re: multiple copies of openldap
Index(es):
- Chronological
- Thread